CVE-2008-0164 (Plone CMS) |
|
| BugsAlert Home > CVE-2008-0164 (Plone CMS) | |
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Plone CMS 3.0.5 and 3.0.6 allow remote attackers to (1) add arbitrary accounts via the join_form page and (2) change the privileges of arbitrary groups via the prefs_groups_overview page. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0164 Learn more about CVE-2008-0164 (Plone CMS) |
|
| Tags: cve-2008-0164 plone cms | |
Related Items |
|
|
CVE-2007-6649 (MatPo Bilder Galerie)
|
|
|
Bugtraq: Insecure Use of RC4 in LSrunasE and Supercrypt (CVE-2007-6340)
|
|
|
Vuln: Phoenix View CMS 'admin_frame.php' Cross-Site Scripting Vulnerability
|
|
|
IBM WebSphere Portal Unspecified Security Bypass Vulnerability
|
|
|
FrSIRT - Redhat Security Update Fixes IBMJava2 Multiple Vulnerabilities
|
|
|
FrSIRT - Ubuntu Security Update Fixes Kernel Denial of Service Vulnerabilities
|
|
|
Brian King: Retrieving Your Extension Version
|
|
